cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþScript ZHPFix
[MD5.8E445893B21AE3A59D351B9746B63D73] - (.Fuyu LIMITED - WindowsProtectManger Service.) -- C:\ProgramData\WindowsProtectManger\wprotectmanager.exe [573344] [PID.1316] => Infection LOP (Possible)
G1 - GCS: Preference [User Data\Default] http://istart.webssearches.com =>Hijacker.WebsSearches
[MD5.00000000000000000000000000000000] [APT] [{C8F386F2-EFBC-466C-B7B7-31F54F495A8C}] (...) -- C:\Users\Admin\AppData\Roaming\webssearches\UninstallManager.exe (.not file.) [0] =>Hijacker.WebsSearches
O42 - Logiciel: HQ-Video-Pro-1.7 - (.HQ-Video.) [HKLM][64Bits] -- HQ-Video-Pro-1.7 =>PUP.CrossRider
O42 - Logiciel: Re-markit - (.Re-markit-software.) [HKLM][64Bits] -- 3C13F1B9-4CC5-FDA7-0DC2-8B917476BD8E =>PUP.ReMarkIt
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
O43 - CFD: 28/05/2014 - 19:54:28 - [] ----D C:\Program Files (x86)\HQ-Video-Pro-1.7 =>PUP.CrossRider
O43 - CFD: 28/05/2014 - 19:58:10 - [] ----D C:\Users\Admin\AppData\Local\com => PUP.Agent
HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASAPI32 =>Adware.NewPlayer
HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASMANCS =>Adware.NewPlayer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\giant savings extension-bg_RASAPI32 =>Adware.VidSaver
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\giant savings extension-bg_RASMANCS =>Adware.VidSaver
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\HQ-Video-Pro-1.7] =>PUP.CrossRider ^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\3C13F1B9-4CC5-FDA7-0DC2-8B917476BD8E] =>PUP.ReMarkIt^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181110}] =>Adware.VidSaver
C:\Program Files (x86)\HQ-Video-Pro-1.7 =>PUP.CrossRider ^
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\halffneccaebicfdfajnbfgpglahfgoe =>Adware.VidSaver
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O4 - HKCU\..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe (.not file.) =>Toolbar.AVGSearch
O4 - HKUS\S-1-5-21-2720379634-2052144507-3456528948-1000\..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\Admin\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe (.not file.) =>Toolbar.AVGSearch
[MD5.0235566E5134C79D5D40C1397220AC4E] [WIS][27/02/2013] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\3bca2.msi [28160] =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\googletoolbarinstaller_full_signed_RASAPI32 =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\googletoolbarinstaller_full_signed_RASMANCS =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarInstaller_updater_signed_RASAPI32 =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarInstaller_updater_signed_RASMANCS =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarNotifier_RASAPI32 =>Toolbar.Google
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoogleToolbarNotifier_RASMANCS =>Toolbar.Google
[HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] (Google Toolbar) =>Toolbar.Google
[HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}] (Google Toolbar Helper) =>Toolbar.Google
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:AVG-Secure-Search-Update_0913b =>Toolbar.AVGSearch^
C:\Windows\Installer\3bca2.msi =>Toolbar.Google^
[HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] (Google Toolbar) =>Toolbar.Google^
[HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}] (Google Toolbar Helper) =>Toolbar.Google^
O23 - Service: WindowsProtectManger Service (WindowsProtectManger) . (.Fuyu LIMITED - WindowsProtectManger Service.) - C:\ProgramData\WindowsProtectManger\wprotectmanager.exe
O42 - Logiciel: WindowsProtectManger20.0.0.339 - (.Fuyu LIMITED.) [HKLM][64Bits] -- WindowsProtectManger
O43 - CFD: 28/05/2014 - 19:54:45 - [] ----D C:\ProgramData\WindowsProtectManger


ShortcutFix
FirewallRaz
Emptytemp
SysRestore


Publicité


Signaler le contenu de ce document

Publicité